• Log In
  • Skip to primary navigation
  • Skip to main content
  • Skip to footer
  • Home
    • Instructor
  • Class Materials
    • Classroom Recordings
    • Lectures
  • Class Blogs
    • About Blogs
    • Read Blogs Here
  • Schedule
    • ACL
      • Class 01 – Introduction to the Course and to Fraud
      • Class 02 – Fighting and Preventing Fraud
      • Class 03 – Fraud Detection
      • Class 04 – Data Driven Fraud Detection – Investigating Concealment and Money Laundering
    • ACL Labs
      • Lab 01 – Install ACL / Review and Work with On-Line Documentation
      • Lab 02 – ACL Analytics Basics | CPE (1.5)
      • Lab 03 – Fraud Scandals of Note
      • Lab 04 – ACL Analytics Foundations (CPE) (ACL 101 V4 CPE)
      • Lab 05 – Remediating Issues & Reporting Results (CPE) (ACL 105 V1 CPE)
      • Lab 06 – ACL Analytics Introduction to Scripting (CPE) (ACL 106 V1 CPE)
      • Lab 07 – Basics of Datetime Fields Learning Series (Basic-Intermediate) (ACL 210)
      • Lab 08 – Basics of Datetime Fields Learning Series (Basic-Intermediate) (ACL 210) (Continued…)
  • Quizzes and Tests
    • Mid-Term Exam
    • Final Exam
  • Grading and Policies
  • WEBEX

MIS5208 Spring 2018

DATA ANALYTICS FOR IT AUDITORS AND CYBERSECURITY

Social Media

April 23, 2018 by Ruby(Qianru) Yang

Image result for linkedin hack

After Facebook and our class guest speaker, Mike Green’s lecture, I start thinking seriously about risks in our social media. Comparing with Facebook, Instagram and Snapchat, I think LinkedIn is more dangerous because most of us contained our real information in that, including real name, education background, working information and so on. I have read a news yesterday about Flaw in LinkedIn AutoFill Plugin Lets Third-Party Sites Steal Your Data. In the article,  it discloses a new vulnerability discovered in Linkedin’s popular AutoFill functionality found leaking its users’ sensitive information to third party websites without the user even knowing about it. LinkedIn provides an AutoFill plugin for a long time that other websites can use to let LinkedIn users quickly fill in profile data, including their full name, phone number, email address, ZIP code, company and job title, with a single click. A legitimate website would likely place a AutoFill button near the fields the button can fill, but according to Cable, an attacker could secretly use the AutoFill feature on his website by changing its properties to spread the button across the entire web page and then make it invisible.

https://thehackernews.com/2018/04/linkedin-account-hack.html

Filed Under: General Tagged With:

Copyright © 2025 · Magazine Pro Theme on Genesis Framework · WordPress · Log in